2 matches found
CVE-2022-46383
CVE-2022-46383 affects RackN Digital Rebar up to versions 4.10.8. The vulnerability stems from Incorrect Access Control: a public API endpoint exposes a privileged token that an attacker can use to escalate privileges and gain full administrative access. Exploitation details are not provided in t...
CVE-2022-46382
Summary: CVE-2022-46382 affects RackN Digital Rebar up to version 4.10.8, where authentication tokens issued after login could still authorize actions even if the user account no longer exists. The root cause is insecure token validation during the lifecycle of a user account, enabling deleted us...